From 2d9961164c9d167dc6d60a89cc3a062c0a2b8410 Mon Sep 17 00:00:00 2001
From: Chris Lamb <lamby@debian.org>
Date: Thu, 14 Oct 2021 09:33:10 +0100
Subject: Triage CVE-2021-41303 in shiro for stretch LTS.

---
 data/CVE/list | 1 +
 1 file changed, 1 insertion(+)

diff --git a/data/CVE/list b/data/CVE/list
index 0b402fa189..ab5c16bb4e 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2611,6 +2611,7 @@ CVE-2021-41303 (Apache Shiro before 1.8.0, when using Apache Shiro with Spring B
 	- shiro <unfixed>
 	[bullseye] - shiro <no-dsa> (Minor issue)
 	[buster] - shiro <no-dsa> (Minor issue)
+	[stretch] - shiro <no-dsa> (Minor issue)
 	NOTE: https://www.openwall.com/lists/oss-security/2021/09/17/1
 CVE-2021-41302 (ECOA BAS controller stores sensitive data (backup exports) in clear-te ...)
 	NOT-FOR-US: ECOA BAS controller
-- 
cgit v1.2.3